Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. An apparatus configured to allow a second party to authenticate a right of a user of a data transfer device to complete a transaction at a point of sale device associated with said second party, said apparatus comprising: a first data interface configured to communicate with said data transfer device; a second data interface configured to communicate with said point of sale device; and computerized logic in data communication with said first data interface and said second data interface, said computerized logic configured to cause said apparatus to: receive from said first data interface encrypted transaction information held in storage at said data transfer device, said transaction information comprising at least authentication data identifying one or more parties authorized to use said data transfer device; authenticate said right of said user of said data transfer device to decrypt a first portion of said encrypted transaction information by comparing a decrypted second portion of said encrypted authentication data stored at said data transfer device to identity data obtained from said user of said data transfer device; and upon authentication of said user: provide at least said decrypted first portion of said encrypted transaction information to said point of sale to complete said transaction via said second data interface; and transmit via said first data interface a record of said completed transaction for storage on said data transfer device, said record comprising at least one data structure received from said point of sale device comprising at least an encrypted indicator of a hashed electronic receipt.
An apparatus facilitates secure transactions between a user's data transfer device (like a smartphone) and a point-of-sale (POS) system. It receives encrypted transaction data from the user's device, including authentication information. The apparatus verifies the user's identity by comparing decrypted authentication data with identity data obtained directly from the user (e.g., fingerprint, PIN). Upon successful authentication, it sends the decrypted transaction data to the POS to complete the transaction. Finally, the apparatus receives transaction details (including an encrypted hash of an electronic receipt) from the POS and stores this record on the user's data transfer device.
2. The apparatus of claim 1 , wherein said apparatus is configured to provide said authentication using at least dual key encryption.
The apparatus that enables secure transactions using encrypted data and identity verification uses dual-key encryption for authentication. This involves the use of a public key to encrypt the data and a private key to decrypt the data at the point of sale. This ensures that only the intended recipient can access the transaction information. This is an added level of security to protect the user's data from unauthorized access, building on top of the authentication steps already described in the original secure transaction system.
3. The apparatus of claim 2 , wherein said apparatus is further configured to provide validation of at least a portion of said transaction information using at least a one-way hash algorithm.
The apparatus previously described using dual-key encryption for secure transactions also employs a one-way hash algorithm to validate transaction information. This means that a portion of the transaction data is processed through a hash function, generating a unique, fixed-size "fingerprint" of the data. This fingerprint is then used to verify the integrity of the information; any alteration to the original data will result in a different hash value, indicating tampering and further improving on the identity verification and secure encrypted transaction system.
4. The apparatus of claim 1 , wherein said authentication requires said second party to physically possess said data transfer device.
The apparatus designed to allow secure encrypted transactions and identity verification requires the point-of-sale system (i.e. the vendor) to physically possess the user's data transfer device (smartphone, card, etc.) during the authentication process. This likely involves the device being connected directly to the apparatus or placed in close proximity for contactless communication, further adding to the authentication checks already in place and ensuring the user is present during the secure encrypted transaction.
5. The apparatus of claim 1 , wherein said at least one data structure comprises information relating to at least one of a vendor name, a date of said transaction, a list of items purchased, buyer preferences, medical records, automobile service history.
The data structure containing the record of a completed transaction, stored on the user's data transfer device in this secure encrypted transaction system, may include information such as the vendor's name, the transaction date, a list of purchased items, the buyer's preferences, medical records, or automobile service history. The secure encrypted transaction system uses identity verification to protect this information and allow for easy use of the data transfer device.
6. A method for securely providing transaction information in an electronic format via a data transfer device, comprising: storing transaction information on said data transfer device, said transaction information comprising authentication data identifying one or more parties authorized to use said data transfer device; providing said transaction information from said data transfer device associated with a current one of said one or more parties to a point of sale device associated with a first party; collecting, via said data transfer device, identity data associated with said current one of said one or more parties; providing said identity data to said point of sale device associated with said first party; authenticating a right of said current one of said one or more parties, at said point of sale device, to access a restricted portion of transaction information stored on said data transfer device, said restricted portion of transaction information being used to complete a transaction by comparing said authentication data to said identity data; completing said transaction, when said current one of said one or more parities is authenticated to access said restricted portion of said transaction infolination stored on said data transfer device to complete said transaction; and storing a record of said completed transaction on said data transfer device, said record comprising at least one data structure generated by said point of sale device comprising at least an encrypted indicator of a hashed electronic receipt.
A method for secure electronic transactions involves storing encrypted transaction data (including authentication data) on a user's data transfer device. When making a purchase, the user provides this data to a point-of-sale (POS) device. The POS system collects identity data from the user, then authenticates the user's right to access restricted transaction data by comparing the authentication data with the provided identity data. Upon successful authentication, the transaction is completed using the restricted data, and the POS system generates a record (including an encrypted hash of an electronic receipt) that is stored back on the user's data transfer device.
7. The method of claim 6 , wherein said act of authenticating utilizes at least dual key encryption.
The method described above for secure electronic transactions, involving storing transaction data on a user's device, authenticating the user at the point of sale, and recording the transaction, uses dual-key encryption for the authentication process. This means using a pair of keys where one key encrypts the data and only the other key can decrypt it. The public key is used to encrypt data, and a private key, held securely, is used to decrypt it. This adds a layer of security to protect the identity verification and secure encrypted transaction process.
8. The method of claim 7 , wherein said act of authenticating further comprises providing validation of at least a portion of said transaction information using at least a one-way hash algorithm.
The secure electronic transaction method that uses dual-key encryption for authentication also validates a portion of the transaction data using a one-way hash algorithm. This involves creating a unique "fingerprint" of the data. If the data is tampered with, the hash value will change, indicating that the data is no longer valid. This builds upon the identity verification and secure encrypted transactions already described.
9. The method of claim 6 , wherein said act of authenticating requires said second party to physically possess said data transfer device.
The method for securing electronic transactions which involves identity verification, encryption and authentication requires the point-of-sale device to physically possess the user's data transfer device during the authentication process. This would likely require the user's device to be directly connected to or placed in close proximity to the POS device during the authentication process, further enhancing security and building on top of the identity verification and encrypted transactions.
10. The method of claim 6 , wherein said data structure comprises information relating to at least one of a vendor name, a date of said transaction, a list of items purchased, buyer preferences, medical records, automobile service history.
In the described secure electronic transaction method, the data structure stored on the user's data transfer device, which contains the record of the completed transaction, can include information relating to the vendor's name, transaction date, a list of purchased items, the buyer's preferences, medical records, or automobile service history. The secure encrypted transaction system uses identity verification to protect this information and allow for easy use of the data transfer device.
Unknown
October 14, 2014
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.